Overview

URL jdzhu.cn/html/info10601171.html
IP107.179.64.213
ASNAS46573 Global Frag Networks
Location United States
Report completed2018-10-03 11:41:44 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-10-03 2 jdzhu.cn/images/_sitegray_sitegray.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejscounter.js Malware
2018-10-03 2 jdzhu.cn/yesads.js Malware
2018-10-03 2 jdzhu.cn/html/info10601171.html Malware
2018-10-03 2 jdzhu.cn/images/_dwrinterfaceNewsSearchDWR.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsvsb_news_search_entry.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejslanguage.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsvsb_news_search.js Malware
2018-10-03 2 jdzhu.cn/images/_dwrengine.js Malware
2018-10-03 2 jdzhu.cn/images/_dwrinterfaceNewsvoteDWR.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsbase64.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsformfunc.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsdynclicks.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsnewsnewscontent.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsajax.js Malware
2018-10-03 2 jdzhu.cn/images/systemresourcejsopenlink.js Malware
2018-10-03 2 jdzhu.cn/images/_dwrutil.js Malware
2018-10-03 2 jdzhu.cn/tongji.js Malware
2018-10-03 2 jdzhu.cn/images/imageslogo.swf Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 107.179.64.213

Date UQ / IDS / BL URL IP
2018-11-04 03:19:15 +0100
0 - 0 - 19 seechin.com.cn/html/info10431074.html 107.179.64.213
2018-11-03 06:36:36 +0100
0 - 0 - 19 jdzhu.cn/html/info10311149.html 107.179.64.213
2018-11-03 04:23:46 +0100
0 - 0 - 19 jdzhu.cn/html/dgt..info10681095.html 107.179.64.213
2018-10-10 00:20:08 +0200
0 - 0 - 1 jdzhu.cn/html/dyzc.html 107.179.64.213
2018-10-09 22:24:55 +0200
0 - 0 - 1 www.jdzhu.cn/html/info10321215.html 107.179.64.213
2018-10-09 15:06:06 +0200
0 - 0 - 1 www.jdzhu.cn/html/info10681094.html 107.179.64.213
2018-10-09 11:52:34 +0200
0 - 0 - 1 jdzhu.cn/html/info10791187.html 107.179.64.213
2018-10-05 10:46:40 +0200
0 - 0 - 19 seechin.com.cn/html/info10381590.html 107.179.64.213
2018-10-05 10:09:28 +0200
0 - 0 - 17 jdzhu.cn/html/info1069....xxgk.html 107.179.64.213
2018-09-28 18:36:09 +0200
0 - 0 - 1 seechin.com.cn/html/jbzn.html 107.179.64.213

Last 10 reports on ASN: AS46573 Global Frag Networks

Date UQ / IDS / BL URL IP
2019-06-10 18:25:41 +0200
0 - 0 - 1 lcxunjie.cn/html/hdxzxstd86190.html 107.179.119.78
2019-06-10 18:25:19 +0200
0 - 0 - 1 sdvmj.cn/html/info345....xbjjxbjj.html 107.179.119.158
2019-06-10 18:25:02 +0200
0 - 0 - 1 jxylmuye.cn/html/bmgkjgsz.html 107.179.119.198
2019-06-10 18:24:57 +0200
0 - 0 - 1 phyxgs.com.cn/html/zsjz14252847496.html 107.179.119.182
2019-06-10 17:50:47 +0200
0 - 0 - 1 lylhf.com.cn/html/jiuyebaozhanghezuodanwei201 (...) 107.179.119.197
2019-06-10 17:50:45 +0200
0 - 0 - 1 jensmay.cn/html/.tztg201611....hysqk.html 107.179.119.216
2019-06-10 17:50:11 +0200
0 - 0 - 1 lyjiuhua136.cn/html/hyzx7641.html 107.179.119.198
2019-06-10 17:49:34 +0200
0 - 0 - 1 jinaotanye.com.cn/htmlzt2016bkhpc_hashaymnR1.html 107.179.119.16
2019-06-10 17:49:17 +0200
0 - 0 - 2 lczhggwz.com.cn/xzzxxwbgzl.html 107.179.119.77
2019-06-10 17:48:36 +0200
0 - 0 - 2 lczhggwz.com.cn/html/jxsw234404.html 107.179.119.77

Last 10 reports on domain: jdzhu.cn

Date UQ / IDS / BL URL IP
2019-06-06 22:04:18 +0200
0 - 0 - 1 jdzhu.cn/html/info1027....xygl.html 107.179.119.221
2019-05-04 21:43:37 +0200
0 - 0 - 1 jdzhu.cn/html/info10631119.html 107.179.119.221
2019-03-07 10:36:28 +0100
0 - 0 - 1 jdzhu.cn/html/jxkykgqy.html 107.179.119.221
2019-03-05 18:57:18 +0100
0 - 0 - 1 jdzhu.cn/html/info1060....dgt.html 107.179.119.221
2019-02-26 23:36:50 +0100
0 - 0 - 1 jdzhu.cn/html/info1042....jxkyjxzy.html 107.179.119.221
2019-02-17 06:07:14 +0100
0 - 0 - 1 jdzhu.cn/html/info10311147.html 107.179.119.221
2018-12-09 19:50:20 +0100
0 - 0 - 1 jdzhu.cn/html/info1035....dgt.html 107.179.119.221
2018-11-03 06:36:36 +0100
0 - 0 - 19 jdzhu.cn/html/info10311149.html 107.179.64.213
2018-11-03 04:23:46 +0100
0 - 0 - 19 jdzhu.cn/html/dgt..info10681095.html 107.179.64.213
2018-10-13 01:18:43 +0200
0 - 0 - 1 jdzhu.cn/html/info1027....dyzc.html 209.99.40.223


JavaScript

Executed Scripts (22)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 88, repeated: 1) - SHA256: f37e595fa25e7d939293b9fdae5fd21b4bcbd3f58631a4d4134bedc27554b990

                                        < script src = 'https://s95.b9823852351323h.com/cp/002.js'
type = 'text/javascript' > < /script>
                                    

#2 JavaScript::Write (size: 77, repeated: 1) - SHA256: 071f4fcaebb1d9aa498efe46731faa6a8fdd4c727108059c6da3681c77d29a15

                                        < span id = "dynclicks_wbnews_1171_766"
name = "dynclicks_wbnews_1171_766" > < /span>
                                    


HTTP Transactions (39)


Request Response
                                        
                                            GET /images/_sitegray_sitegray.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 95
Last-Modified: Sun, 30 Oct 2016 09:36:44 GMT
Accept-Ranges: bytes
Etag: "92dc60209132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   95
Md5:    cb16b8b2fae1a2cb3ddba43817fdc763
Sha1:   c1bb1153a3ebb528f86fa5cc57ddd4bfbe9bd4af
Sha256: 66897f9cf68b725abd635d7dc7c1f4e91c80a41779c91bd25cf3a504d8f07407

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1060stylecsscss.css HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 3670
Last-Modified: Mon, 31 Oct 2016 03:28:30 GMT
Accept-Ranges: bytes
Etag: "cc9432da2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3670
Md5:    f6d42f05a9c4afcf56168e3c695a8b1b
Sha1:   25dea04f297695a77e1ab680c53de2617e54b9a0
Sha256: 10866ca106601e28a2ea0744065d73820d7c9e168a5f779310d555cfbbcc5254
                                        
                                            GET /images/info1060_sitegray_sitegray_dcss.css HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 20
Last-Modified: Mon, 31 Oct 2016 03:28:31 GMT
Accept-Ranges: bytes
Etag: "ea1999da2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    311749c1d5f9bcf240ca9c25eae61f47
Sha1:   29703f0938cab5945db52e553f3f22cbd7f0b478
Sha256: 183f83b69b6f7ced023f06bc9b98b2d00c9e08b5c627c1f6e9002f48f0bbfb5c
                                        
                                            GET /images/systemresourcejscounter.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1333
Last-Modified: Sun, 30 Oct 2016 09:36:44 GMT
Accept-Ranges: bytes
Etag: "fc9cc2209132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   1333
Md5:    d191a3301fc86ce7fb1e95ac97933b95
Sha1:   af296d80262f25d154ceeddbefa32f90cfe968f6
Sha256: 3cf2d5d70de40eb3d0fdf9a1c22221a2fbeb07a0b30b81a967e92d30235470f9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/info1060articlevsbcss.css HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 815
Last-Modified: Mon, 31 Oct 2016 03:28:32 GMT
Accept-Ranges: bytes
Etag: "d02e3da2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode text, with CRLF, LF line terminators
Size:   815
Md5:    17e749c349a64f4379c8607ff3254766
Sha1:   90c36146b0655466f6944ff58bd32a88cbdb5049
Sha256: 3119bb0e0d227638fbb51a7ed25945c7ed86a09aeb8bce4b57296b7698ec1909
                                        
                                            GET /yesads.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 107
Last-Modified: Mon, 17 Apr 2017 00:25:57 GMT
Accept-Ranges: bytes
Etag: "20beab2e11b7d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   107
Md5:    0f29f40bb734fb936ee1d5073755377b
Sha1:   6aedfb1e71e1b5bf8ae35a1402a42aae3d8f25ec
Sha256: 09c0e538f739853e7e8a604fc0d49732fef675043e1452d9b35d5c4acadf7fd7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /html/info10601171.html HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 129628
Last-Modified: Fri, 28 Apr 2017 15:04:50 GMT
Accept-Ranges: bytes
Etag: "1c6370c830c0d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:40:59 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   129628
Md5:    9a0004905a3b28522c025bf4cff0b8a2
Sha1:   b7fa1f7e03f8acf1d789751c8ad7141833fcc99c
Sha256: 9c65bd8463b13763a5f294728dfeee4fe2ab5c1820b3c3df335fe32df91dc004

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrinterfaceNewsSearchDWR.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 961
Last-Modified: Sun, 30 Oct 2016 09:36:55 GMT
Accept-Ranges: bytes
Etag: "90b32f279132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   961
Md5:    23b7f75b1aec7495b47d299cb019799c
Sha1:   f8ac802b8488974db8bbd2acf5d7f8715c170a32
Sha256: c81fdd32663ac5a5942d4e97719a5816e64c76bf26094dccbba2c011b67ed1a3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 28 Sep 2018 14:28:29 GMT
Etag: C59F043B4514A78F33DB6B60D4389843320AD3E2
X-OCSP-Responder-ID: rmdccaocsp27
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=189392
Expires: Fri, 05 Oct 2018 14:17:46 GMT
Date: Wed, 03 Oct 2018 09:41:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c47ce29268ab7ad7ee06ca0ccaf5ae17
Sha1:   c59f043b4514a78f33db6b60d4389843320ad3e2
Sha256: 2dec98f1163691c99895bfbd4aabc2207a76669f6f33b984f5138373351de199
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 27 Sep 2018 21:27:34 GMT
Etag: 142860946D97E264D2D183B6BC4EA4F8D97A2929
X-OCSP-Responder-ID: rmdccaocsp14
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=128191
Expires: Thu, 04 Oct 2018 21:17:45 GMT
Date: Wed, 03 Oct 2018 09:41:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    f0a6ebd298cb2fc7fc6d15077912f9dc
Sha1:   142860946d97e264d2d183b6bc4ea4f8d97a2929
Sha256: 77bbbffcda45e3b611f2ff30695fb8801db2265197c1b5ba26dd770cd5307524
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 27 Sep 2018 21:27:34 GMT
Etag: AD615918C72B563D82CE144318ED6E69C364F176
X-OCSP-Responder-ID: rmdccaocsp21
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=128213
Expires: Thu, 04 Oct 2018 21:18:07 GMT
Date: Wed, 03 Oct 2018 09:41:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fd09333a83600e03a0fe2dc697ca0a91
Sha1:   ad615918c72b563d82ce144318ed6e69c364f176
Sha256: 8249062819af4dbfd7f46e8a62541e95cb8ca5c2e5064a0c35809c52e1e0e42d
                                        
                                            GET /images/systemresourcejsvsb_news_search_entry.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 5233
Last-Modified: Sun, 30 Oct 2016 09:36:56 GMT
Accept-Ranges: bytes
Etag: "e6d4b2279132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:01 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
Size:   5233
Md5:    01911a03a5f6e240461c1cdcdf35ae5b
Sha1:   5391d0abfad157548d560d65e6a222e84856e3da
Sha256: 9971dead7cb6a41088160ac98c3560799707fd9451a1a38071cfc9fededb7d5b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejslanguage.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 14926
Last-Modified: Sun, 30 Oct 2016 09:36:57 GMT
Accept-Ranges: bytes
Etag: "4a1d3d289132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:01 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with very long lines, with CRLF line terminators
Size:   14926
Md5:    1312ca0aaf121a5151fd0109ab50c446
Sha1:   59944c2fa2b9c55948a0dddebc6b0b8150550f43
Sha256: f0c74a7e71c86b98a0833fea5e0077a185ea03edd6cdd3fce6b78efaec2f5a26

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /cp/002.js HTTP/1.1 
Host: s95.b9823852351323h.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         45.65.46.3
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Apache
Date: Wed, 03 Oct 2018 11:37:00 GMT
Content-Length: 600
Connection: keep-alive
Keep-Alive: timeout=60


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   600
Md5:    cb8780b111357a38640132ea03e9c8f4
Sha1:   80d3603d08023fde20eac46e0030f5307c438dd2
Sha256: 98a82d853035018198e85efa760cac8c02b6d774360821380a0aadabf82b7b5a
                                        
                                            GET /images/systemresourcejsvsb_news_search.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 3880
Last-Modified: Sun, 30 Oct 2016 09:36:56 GMT
Accept-Ranges: bytes
Etag: "687572279132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:01 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   3880
Md5:    fb5d6e426a99860a60132247f3955ee1
Sha1:   c611c562f968460f63292c504d775f0b82804913
Sha256: fc43d2b7a82948ecd64ffab60b964a72309368af7ce24e4b32c205748f5576d8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrengine.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 47417
Last-Modified: Sun, 30 Oct 2016 09:36:54 GMT
Accept-Ranges: bytes
Etag: "bc326c269132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:00 GMT


--- Additional Info ---
Magic:  ASCII C program text, with CRLF, LF line terminators
Size:   47417
Md5:    63d023492ddc12a7aa3cd624e297d2a0
Sha1:   ef05392e883f77541eafd82c1a8cef5240771539
Sha256: b9b67790b6f0f4295d211b139567d805a2d8c72349966131ef78f62f495567b9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/_dwrinterfaceNewsvoteDWR.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 1333
Last-Modified: Mon, 31 Oct 2016 03:25:27 GMT
Accept-Ranges: bytes
Etag: "f6dd9b6c2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   1333
Md5:    d5891d8de651c28b76fb359b661a3f51
Sha1:   e79c6083ab1abc18c1e1f7830684d2aaa441ecea
Sha256: dbc6c5ab77c91102def1d2977cfc5b15b4056edfa670547069992829da30576d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsbase64.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 4025
Last-Modified: Sun, 30 Oct 2016 09:37:06 GMT
Accept-Ranges: bytes
Etag: "261f52d9132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:01 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   4025
Md5:    00b6f6e633d233972647ed727770bb95
Sha1:   1fd81768a34000749f28de5e0ae1331ec23bd323
Sha256: 34bf7cc3ebf6cb87f35b92e5d8d7e1d9d39958ff805cab0758b3489b37d0c0ba

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsformfunc.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 30 Oct 2016 09:37:10 GMT
Accept-Ranges: bytes
Etag: "4072d309132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:01 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    78d80475f6c6d75956a8b8ece6ef384d
Sha1:   6517ad661c1f6f000edf80a84065de4a2d5d2c07
Sha256: 241aa991e6ecb25d54b1f46422f27df612308427d5426848538c36a3cdbc23a9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsdynclicks.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 3474
Last-Modified: Sun, 30 Oct 2016 09:37:24 GMT
Accept-Ranges: bytes
Etag: "64aaa3389132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   3474
Md5:    2561c5a10d2059006a2ee239d9ded193
Sha1:   6cd6f5cd2fcb5b39553fe39bdaf39747111fc9ee
Sha256: 5d56867bfdea9d9e2ee9e65c538ae05d29c75cf6fe602ef211c3df6a325c25da

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsnewsnewscontent.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 9155
Last-Modified: Mon, 31 Oct 2016 03:25:27 GMT
Accept-Ranges: bytes
Etag: "743ddc6c2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) English text, with CRLF line terminators
Size:   9155
Md5:    5b75b31321596a6fb8dea65693731632
Sha1:   159bcb3e70758e66ee14feeb0d77dad5b0fc81a9
Sha256: 2d3b49d5a1d9b2577761a1bb5890a2917ebd49c4561fbb301f3cfbc57d5b9700

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourcejsajax.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 6635
Last-Modified: Mon, 31 Oct 2016 03:25:27 GMT
Accept-Ranges: bytes
Etag: "f29c1c6d2633d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   6635
Md5:    5a96ce6ac6baa29cbcba855ecbc048f1
Sha1:   88c8144aec966c9070d509eb64abd9cbfcfb9254
Sha256: 0b450bb51bbba9a5e74eb2ba42752f373f5b386665de66389d2cea906db9d094

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /system/resource/code/datainput.jsp?owner=1120214538&e=1&w=1176&h=885&treeid=1060&color=24&pageurl=aHR0cDovL2pkemh1LmNuL2h0bWwvaW5mbzEwNjAxMTcxLmh0bWw%3D&refer=&pagename=L2FydGljbGUuanNw&newsid=1171 HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/systemresourcejsopenlink.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 648
Last-Modified: Sun, 30 Oct 2016 09:37:51 GMT
Accept-Ranges: bytes
Etag: "422d3d489132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) text, with CRLF line terminators
Size:   648
Md5:    ccdba8a8ed118a385b33092b30261504
Sha1:   e41c77d81641795fc0ccc109c4a058ee5ab94bce
Sha256: e28b393862a9191fe08877274ebcbb34d820752593fe4923b20782e5267a4c12

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagestop_bg.jpg HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/images/info1060stylecsscss.css

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1639
Last-Modified: Sun, 30 Oct 2016 09:37:59 GMT
Accept-Ranges: bytes
Etag: "42e114d9132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   1639
Md5:    41f6e8ac9f2c72cd1609b4e7d2a07cb8
Sha1:   c66d7a18ef0f1b8fe46387ce2f78c022fe882da5
Sha256: 33442aa5fa6cb6d5054d8accb044a8427a5a212c6f20b004f2802c114d757eb5
                                        
                                            GET /images/imagesnav.jpg HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/images/info1060stylecsscss.css

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 2318
Last-Modified: Sun, 30 Oct 2016 09:38:02 GMT
Accept-Ranges: bytes
Etag: "3a8c344f9132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:03 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   2318
Md5:    1e15fcc77732b0bb75f8140ee0024861
Sha1:   a67d386d6fcf96794ee8d13c826dfafaad3822f8
Sha256: 0cdfe6e3ab819228753e78bab501270c3f2207d0a023eea111b78781f44be4e8
                                        
                                            GET /images/_dwrutil.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 46649
Last-Modified: Sun, 30 Oct 2016 09:36:55 GMT
Accept-Ranges: bytes
Etag: "1254ef269132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  ASCII C program text, with CRLF, LF line terminators
Size:   46649
Md5:    677ab63c5e27627434151c16df0df643
Sha1:   1dc783a2998dd75c59e4f0f5e0c69c48464874de
Sha256: 9c543c752767147e7a18e8cc45f2d3eefc0763b341e0f77e582d659a34b935cd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /system/resource/code/news/click/dynclicks.jsp?clickid=1171&owner=1120214538&clicktype=wbnews HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:03 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /images/imagesfooter.jpg HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/images/info1060stylecsscss.css

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 83776
Last-Modified: Sun, 30 Oct 2016 09:38:15 GMT
Accept-Ranges: bytes
Etag: "e4a59579132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:04 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   83776
Md5:    1156a2e2bfba9a74d6e159a8074b20a2
Sha1:   d0ede6def4af19e83f45e310c7e3e154148f2535
Sha256: 69e510d8a63b4d92d07dc60e2dc474a5ac19ff5b5387d3d0a7701df840712742
                                        
                                            GET /tongji.js HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 252
Last-Modified: Sat, 12 Nov 2016 17:20:25 GMT
Accept-Ranges: bytes
Etag: "8933d3e93dd21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   252
Md5:    f2cbc78c122a007044395cc3b115e715
Sha1:   e7742d7b2cff39e54f4782eb6873d1c348b3a32d
Sha256: 5b36f027eb8dac81629cc591a5a4bcd44b5ca300717033c34a5b8a7f28d02f4b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/imagesnav2.jpg HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/images/info1060stylecsscss.css

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 6259
Last-Modified: Sun, 30 Oct 2016 09:38:03 GMT
Accept-Ranges: bytes
Etag: "58119b4f9132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:03 GMT


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   6259
Md5:    8f3d7819ce33891f38ef8b1682b331c7
Sha1:   95ea1bddc0648ce478fae7c4351c686760db9970
Sha256: fbe651452b13b43897c39bf20722cb4fe28f8d8b5eaf4803dca83bb07413ba86
                                        
                                            GET /images/imageslogo.swf HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: application/x-shockwave-flash
                                        
Content-Length: 7165
Last-Modified: Sun, 30 Oct 2016 09:36:45 GMT
Accept-Ranges: bytes
Etag: "665d24219132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:03 GMT


--- Additional Info ---
Magic:  Macromedia Flash data (compressed), version 6
Size:   7165
Md5:    670c59bc5d40a5ea2e0579c5dd684e52
Sha1:   140be34f91da01abe7af86e31394ce8967586885
Sha256: 3669b4cdc4a9a62fc04d5c235c4fef246f4250a8e3ed44c0d4895ad641f2e4b9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/systemresourceimagesresearchseach22.gif HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 841
Last-Modified: Sun, 30 Oct 2016 09:36:49 GMT
Accept-Ranges: bytes
Etag: "7a5665239132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:03 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 46 x 22
Size:   841
Md5:    d5ff612ee01f30a61dcd3f1a3043bb44
Sha1:   bda2a173bab7725eee5787645201b3b3b8a37494
Sha256: f099f40e71db445f3edca90aa5fd3bcd5d5a9f578ed7882e2586762734aea0a7
                                        
                                            GET /hm.js?4db8f5e2528727a83a3fb7e2ce6017e9 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 9145
Date: Wed, 03 Oct 2018 09:41:17 GMT
Etag: 3e7f41d4cdc8abfc95083e56a172b6ef
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9A986E8CDEEE4DF5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9145
Md5:    3583de46bd708c416e63af024fbef36d
Sha1:   a00513d8b81b670179dcd5087cb402742e1ff1d1
Sha256: 4016e02374f7ee482db2c1392d57257676e3093011dfc834eb042d28c1aab36c
                                        
                                            GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1 
Host: fpdownload2.macromedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.135.34.8
HTTP/1.1 200 OK
Content-Type: text/xml
                                        
Server: Apache
Last-Modified: Tue, 11 Sep 2018 10:13:53 GMT
Etag: "60e-57595bb1f3243"
Accept-Ranges: bytes
Content-Length: 1550
Date: Wed, 03 Oct 2018 09:41:17 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  XML document text\012 XML document text
Size:   1550
Md5:    dd3e6a6a77e7d63e546753f02b7b73c7
Sha1:   d3cbedde9493de736710fd85290242bae892d383
Sha256: 55179348a8eaffff6e19fd618bad98768b889c0b7cd474f040a6bfd7a2f8e82a
                                        
                                            GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1176x885&vl=754&et=0&fl=10.0&ja=1&ln=en-us&lo=0&rnd=134072169&si=4db8f5e2528727a83a3fb7e2ce6017e9&v=1.2.34&lv=1&ct=!!&tt=%E6%9C%9F%E5%88%9D%E5%AD%A6%E7%A7%91%E6%95%99%E5%AD%A6%E8%AE%A1%E5%88%92%E6%A3%80%E6%9F%A5%E6%83%85%E5%86%B5%E7%AE%80%E6%8A%A5-%E6%B6%9F%E6%B0%B4%E5%8E%BF%E5%B9%B8%E7%A6%8F%E9%87%8C%E5%AE%9E%E9%AA%8C%E5%B0%8F%E5%AD%A6&sn=60018 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/html/info10601171.html
Cookie: HMACCOUNT=9A986E8CDEEE4DF5

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 03 Oct 2018 09:41:18 GMT
Pragma: no-cache
Server: apache
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /images/imageslogo.jpg HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://jdzhu.cn/images/info1060stylecsscss.css

                                         
                                         107.179.64.213
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 270830
Last-Modified: Sun, 30 Oct 2016 09:38:02 GMT
Accept-Ranges: bytes
Etag: "c2a4cb4e9132d21:76aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:02 GMT


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   270830
Md5:    0a15f61cd2f5f4589bc9991badb45b7b
Sha1:   b2d31cc340d08f568b414edde5777d03cf8a50f9
Sha256: 5ce0b244602c5c3a35723eac28ecb5f02511c78c776eddefc31aa7145fce196b
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_4db8f5e2528727a83a3fb7e2ce6017e9=1538559678; Hm_lpvt_4db8f5e2528727a83a3fb7e2ce6017e9=1538559678

                                         
                                         107.179.64.213
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:06 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: jdzhu.cn
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: Hm_lvt_4db8f5e2528727a83a3fb7e2ce6017e9=1538559678; Hm_lpvt_4db8f5e2528727a83a3fb7e2ce6017e9=1538559678

                                         
                                         107.179.64.213
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Content-Length: 1308
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 03 Oct 2018 09:41:09 GMT


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1308
Md5:    2923b250a3660c034aa7831d5e6d7f3c
Sha1:   646f109012bac000fe1bc58f40d112f77483f22a
Sha256: e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075